Privacy Policy

Introduction

MCOCLOUD TECHNOLOGY PTE. LTD. ("we," "us," "our," or "Company") operates PapayaVPN (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service. Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the Service.

1. Our Commitment to Privacy

PapayaVPN is committed to protecting your privacy. We follow a strict no-logs policy, which means we do not collect or store logs of your online activity, including:

• Browsing history
• Traffic destination or content
• DNS queries
• IP addresses (neither your real IP nor the VPN IP assigned to you)
• Connection timestamps
• Session duration

2. Information We Collect

2.1 Account Information

When you create an account, we collect:

• Email address
• Username (optional)
• Payment information (processed through secure third-party payment processors)

2.2 Connection Information

To maintain quality of service and prevent abuse, we may collect minimal connection data:

• Total bandwidth usage (aggregated, not linked to browsing activity)
• Connection dates (not specific times)
• Choice of VPN server location

2.3 Support Information

If you contact our support team, we may collect:

• Name and email address
• Device information and operating system
• App version and error logs (with your consent)
• Any information you provide in your support request

3. How We Use Your Information

We use the information we collect to:

• Create and manage your account
• Process payments and prevent fraud
• Provide customer support
• Send service-related communications
• Improve and optimize our Service
• Enforce our Terms of Service
• Comply with legal obligations

4. Payment Processing

We use secure third-party payment processors to handle payment transactions. We do not store your credit card information on our servers. Our payment processors may collect and store payment information in accordance with their own privacy policies and security standards, which comply with PCI-DSS requirements.

5. Data Security

We implement appropriate technical and organizational security measures to protect your personal information, including:

• Industry-standard encryption for data in transit and at rest
• Regular security audits and assessments
• Strict access controls and authentication procedures
• Regular security training for our staff
• Secure data centers with physical security measures

6. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required by law. Specifically:

• Account information is retained while your account is active
• Payment records are kept as required for tax and accounting purposes
• Support tickets are retained for service improvement
• Upon account deletion, we remove your data within 30 days

7. Information Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:

• Service Providers: With trusted third parties who assist us in operating our Service (e.g., payment processors, email services)
• Legal Requirements: When required by law, court order, or governmental authority
• Protection of Rights: To protect our rights, property, or safety, or that of our users or the public
• Business Transfers: In connection with a merger, acquisition, or sale of assets
• With Your Consent: When you have given us explicit permission to share your information

8. International Data Transfers

As we operate globally, your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws different from those in your country. We ensure appropriate safeguards are in place to protect your information in accordance with this Privacy Policy.

9. Your Rights and Choices

Depending on your location, you may have certain rights regarding your personal information:

• Access: Request a copy of the personal information we hold about you
• Correction: Request correction of inaccurate or incomplete information
• Deletion: Request deletion of your personal information
• Portability: Request your data in a portable format
• Objection: Object to certain processing of your information
• Withdrawal of Consent: Withdraw consent where we rely on it for processing

To exercise these rights, please contact us at info@mcocloud.com.

10. Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to improve your browsing experience and analyze website traffic. You can control cookies through your browser settings. Essential cookies required for the Service to function cannot be disabled.

Types of cookies we use:

• Essential Cookies: Required for basic website functionality
• Analytics Cookies: Help us understand how visitors use our website
• Preference Cookies: Remember your settings and preferences

11. Third-Party Services

Our Service may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to read their privacy policies before providing any personal information.

12. Children's Privacy

Our Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

13. Marketing Communications

We may send you promotional emails about new features, products, or services with your consent. You can opt-out of these communications at any time by clicking the "unsubscribe" link in the email or contacting us directly.

14. Data Breach Notification

In the unlikely event of a data breach that affects your personal information, we will notify you as required by applicable law and take appropriate measures to mitigate any potential harm.

15. Jurisdiction-Specific Rights

European Union (GDPR)

If you are in the European Economic Area, you have additional rights under the General Data Protection Regulation (GDPR), including the right to lodge a complaint with your local supervisory authority.

California (CCPA)

California residents have specific rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information is collected and the right to request deletion.

16. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. For material changes, we will provide additional notice via email or through the Service.

17. Contact Information

If you have any questions about this Privacy Policy or our data practices, please contact us at: